Timing Cryptanalysis Attack
Perry E. Metzger
perry at piermont.com
Mon Dec 11 14:50:02 PST 1995
Eric Young writes:
> Read the SKIP spec (SKIP is Sun's IP level encryption protocol). It uses
> Diffle-Hellman certificates.
Photuris, which likely will be the standard way to do this sort of
thing on top of IPsec, also suffers from the problem, but I suspect
the next version of the draft (number 9) will have it fixed.
More interesting is the fact that a number of NSA vetted protocols
seem to have the flaw. Obviously, they either didn't know or didn't
say anything about it to the folks designing such stuff...
Perry
More information about the cypherpunks-legacy
mailing list